Mercurial > hg > nginx
comparison src/http/modules/ngx_http_proxy_module.c @ 8042:c7e25324be11
Upstream: handling of certificates specified as an empty string.
Now, if the directive is given an empty string, such configuration cancels
loading of certificates, in particular, if they would be otherwise inherited
from the previous level. This restores previous behaviour, before variables
support in certificates was introduced (3ab8e1e2f0f7).
| author | Sergey Kandaurov <pluknet@nginx.com> |
|---|---|
| date | Tue, 07 Jun 2022 20:08:57 +0400 |
| parents | 2bf7792c262e |
| children | 9d98d524bd02 |
comparison
equal
deleted
inserted
replaced
| 8041:0784ab86ad08 | 8042:c7e25324be11 |
|---|---|
| 4953 != NGX_OK) | 4953 != NGX_OK) |
| 4954 { | 4954 { |
| 4955 return NGX_ERROR; | 4955 return NGX_ERROR; |
| 4956 } | 4956 } |
| 4957 | 4957 |
| 4958 if (plcf->upstream.ssl_certificate) { | 4958 if (plcf->upstream.ssl_certificate |
| 4959 | 4959 && plcf->upstream.ssl_certificate->value.len) |
| 4960 { | |
| 4960 if (plcf->upstream.ssl_certificate_key == NULL) { | 4961 if (plcf->upstream.ssl_certificate_key == NULL) { |
| 4961 ngx_log_error(NGX_LOG_EMERG, cf->log, 0, | 4962 ngx_log_error(NGX_LOG_EMERG, cf->log, 0, |
| 4962 "no \"proxy_ssl_certificate_key\" is defined " | 4963 "no \"proxy_ssl_certificate_key\" is defined " |
| 4963 "for certificate \"%V\"", | 4964 "for certificate \"%V\"", |
| 4964 &plcf->upstream.ssl_certificate->value); | 4965 &plcf->upstream.ssl_certificate->value); |